RHSA-2026:3984HighCVSS 7.5

Red Hat Security Advisory: firefox security update

Published
March 9, 2026
Last Modified
June 30, 2026

🔗 CVE IDs covered (38)

📋 Description

CVE-2026-2447 — libvpx: Heap buffer overflow in libvpx CVE-2026-2757 — firefox: thunderbird: Incorrect boundary conditions in the WebRTC: Audio/Video component CVE-2026-2758 — firefox: thunderbird: Use-after-free in the JavaScript: GC component CVE-2026-2759 — firefox: thunderbird: Incorrect boundary conditions in the Graphics: ImageLib component CVE-2026-2760 — firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component CVE-2026-2761 — firefox: thunderbird: Sandbox escape in the Graphics: WebRender component CVE-2026-2762 — firefox: thunderbird: Integer overflow in the JavaScript: Standard Library component CVE-2026-2763 — firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-2764 — firefox: thunderbird: JIT miscompilation, use-after-free in the JavaScript Engine: JIT component CVE-2026-2765 — firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-2766 — firefox: thunderbird: Use-after-free in the JavaScript Engine: JIT component CVE-2026-2767 — firefox: thunderbird: Use-after-free in the JavaScript: WebAssembly component CVE-2026-2768 — firefox: thunderbird: Sandbox escape in the Storage: IndexedDB component CVE-2026-2769 — firefox: thunderbird: Use-after-free in the Storage: IndexedDB component CVE-2026-2770 — firefox: thunderbird: Use-after-free in the DOM: Bindings (WebIDL) component CVE-2026-2771 — firefox: thunderbird: Undefined behavior in the DOM: Core & HTML component CVE-2026-2772 — firefox: thunderbird: Use-after-free in the Audio/Video: Playback component CVE-2026-2773 — firefox: thunderbird: Incorrect boundary conditions in the Web Audio component CVE-2026-2774 — firefox: thunderbird: Integer overflow in the Audio/Video component CVE-2026-2775 — firefox: thunderbird: Mitigation bypass in the DOM: HTML Parser component CVE-2026-2776 — firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software CVE-2026-2777 — firefox: thunderbird: Privilege escalation in the Messaging System component CVE-2026-2778 — firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component CVE-2026-2779 — firefox: thunderbird: Incorrect boundary conditions in the Networking: JAR component CVE-2026-2780 — firefox: thunderbird: Privilege escalation in the Netmonitor component CVE-2026-2781 — firefox: thunderbird: Integer overflow in the Libraries component in NSS CVE-2026-2782 — firefox: thunderbird: Privilege escalation in the Netmonitor component CVE-2026-2783 — firefox: thunderbird: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component CVE-2026-2784 — firefox: thunderbird: Mitigation bypass in the DOM: Security component CVE-2026-2785 — firefox: thunderbird: Invalid pointer in the JavaScript Engine component CVE-2026-2786 — firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-2787 — firefox: thunderbird: Use-after-free in the DOM: Window and Location component CVE-2026-2788 — firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: GMP component CVE-2026-2789 — firefox: thunderbird: Use-after-free in the Graphics: ImageLib component CVE-2026-2790 — firefox: thunderbird: Same-origin policy bypass in the Networking: JAR component CVE-2026-2791 — firefox: thunderbird: Mitigation bypass in the Networking: Cache component CVE-2026-2792 — firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148 CVE-2026-2793 — firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

🔗 References (41)